Privacy friendly malware quarantines

Assignee

• Microsoft Corporation · US

Inventors

• Mihai Costea · Redmond, US
• Adrian Marinescu · Sammamish, US
• Anil Thomas · Redmond, US
• Gheorghe Marius Gheorghescu · Sammamish, US
• Kyle Larsen · Bonita Springs, US
• Vadim N. Bluvstein · Woodinville, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F21/64
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

The present invention provides a system, method, and computer-readable medium for quarantining a file. Embodiments of the present invention are included in antivirus software that maintains a user interface. From the user interface, a user may issue a command to quarantine a file or the quarantine process may be initiated automatically by the antivirus software after malware is identified. When a file is marked for quarantine, aspects of the present invention encode file data with a function that is reversible. Then a set of metadata is identified that describes attributes of the file including any heightened security features that are used to limit access to the file. The metadata is moved to a quarantine folder, while the encoded file remains at the same location in the file system. As a result, the encoded file maintains the same file attributes as the original, non-quarantined file, including any heightened security features.